Methods and systems for controller-based secure session key exchange over unsecured network paths

US 10,110,422 B2
Filed: 09/16/2015
Issued: 10/23/2018
Est. Priority Date: 09/16/2014
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

determining, by a multi-tenant controller on a network, that a link should be established between a first site and a second site on the network;

if a determination is made that a link should be established between the first site and the second site, then generating, by the multi-tenant controller on the network, a unique common shared secret for establishing a secure link between the first site and the second site;

transmitting, by the multi-tenant controller, the unique common shared secret to both the first site and the second site over a secured certificate authenticated channel;

assigning, by the multi-tenant controller, a wall clock based start and end validity period for the common shared secret;

wherein the common shared secret is transmitted with a validity period in the future to allow secure link communication between the first site and the second site to continue, using a secure session key derived from the common shared secret, if one or more elements in both the first and the second site cannot communicate with the multi-tenant controller; and

using a unique corresponding shared secret for each link per VXWAN (virtual extensible wide area network).

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method includes generating at a multi-tenant controller on a network a common shared secret for establishing a link between a first site and a second site, transmitting the shared secret to each of the first site and the second site over a secured channel, assigning a wall clock based start and end validity period for the shared secret, sending the shared secret with a future validity to allow secure link communication to continue if one or more elements in both sites cannot communicate with the multi-tenant controller and using a separate shared secret per link per VXWAN.

110 Citations

View as Search Results

20 Claims

1. A method comprising:
- determining, by a multi-tenant controller on a network, that a link should be established between a first site and a second site on the network;
  
  if a determination is made that a link should be established between the first site and the second site, then generating, by the multi-tenant controller on the network, a unique common shared secret for establishing a secure link between the first site and the second site;
  
  transmitting, by the multi-tenant controller, the unique common shared secret to both the first site and the second site over a secured certificate authenticated channel;
  
  assigning, by the multi-tenant controller, a wall clock based start and end validity period for the common shared secret;
  
  wherein the common shared secret is transmitted with a validity period in the future to allow secure link communication between the first site and the second site to continue, using a secure session key derived from the common shared secret, if one or more elements in both the first and the second site cannot communicate with the multi-tenant controller; and
  
  using a unique corresponding shared secret for each link per VXWAN (virtual extensible wide area network).
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein generation of the shared secret is performed by software.
  - 3. The method of claim 1, wherein generation of the shared secret is performed by hardware.
  - 4. The method of claim 1, wherein generation of the shared secret is performed by a software and hardware hybrid.
  - 5. The method of claim 1, wherein a network connectivity is physical.
  - 6. The method of claim 1, wherein a network connectivity is logical.
  - 7. The method of claim 1, wherein a network connectivity is hybrid.

8. A method comprising:
- determining, by a multi-tenant controller on a network, that a link should be established between a first channel end point and a second channel end point on the network;
  
  if a determination is made that a link should be established between the first channel end point and the second channel end point, then generating, by the multi-tenant controller, a unique plurality of shared secrets, each shared secret of the plurality of secrets having a corresponding validity period;
  
  transmitting, by the multi-tenant controller, the unique plurality of shared secrets to both the first channel end point and the second channel end point over a secured certificate authenticated channel;
  
  generating a plurality of nonce values for the first channel end point and the second channel end point;
  
  exchanging the nonce values between the first and the second channel end points;
  
  generating a plurality of session keys for secure communication on a channel between the first channel end point and the second channel end point, wherein each session key of the plurality of session keys is generated using a shared secret of the plurality of shared secrets during its corresponding validity period and a nonce value from the first channel end point and from the second channel end point; and
  
  refreshing the plurality of session keys at a predetermined time interval using another shared secret of the plurality of shared secrets during its corresponding validity period.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The method of claim 8, wherein the shared secret is generated by software.
  - 10. The method of claim 8, wherein the shared secret is generated by hardware.
  - 11. The method of claim 8, wherein the shared secret is generated by a software and hardware hybrid.
  - 12. The method of claim 8, wherein a network connectivity is physical.
  - 13. The method of claim 8, wherein a network connectivity is logical.
  - 14. The method of claim 8, wherein a network connectivity is hybrid.

15. A system comprising:
- a first site;
  
  a second site in communication with the first site via a network;
  
  a non-transitory memory for storing program instructions; and
  
  a multi-tenant controller configured to execute the program instructions, configured to determine that a link should be established between the first site and the second site, configured to generate a unique common shared secret if the multi-tenant controller determines that a link between the first site and the second site should be established, and configured to transmit the shared secret to both the first site and the second site over a secured certificate authenticated channel, wherein the common shared secret is used for generating a session key for secure communication on an established link between the first site and the second site, wherein the multi-tenant controller is configured to assign a wall clock based start and end validity period for the common shared secret, and wherein the session key is generated and valid during the validity period for the common shared secret.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The system of claim 15, wherein the shared secret is generated by software.
  - 17. The system of claim 15, wherein the shared secret is generated by hardware.
  - 18. The system of claim 15, wherein the shared secret is generated by a software and hardware hybrid.
  - 19. The system of claim 15, wherein a network connectivity is physical.
  - 20. The system of claim 15, wherein a network connectivity is logical.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Palo Alto Networks Incorporated
Original Assignee
Cloudgenix, Inc. (Palo Alto Networks Incorporated)
Inventors
Yadav, Navneet, Ramasamy, Arivu, Edwards, Aaron
Primary Examiner(s)
Shin, Kyung H

Application Number

US14/856,482
Publication Number

US 20160080502A1
Time in Patent Office

1,133 Days
Field of Search

709227, 726 4
US Class Current
CPC Class Codes

G06F 16/285   Clustering or classification

G06F 16/955   using information identifie...

G06F 17/18   for evaluating statistical ...

H04L 12/4633   Interconnection of networks...

H04L 12/4641   Virtual LANs, VLANs, e.g. v...

H04L 41/0668   by dynamic selection of rec...

H04L 41/12   Discovery or management of ...

H04L 41/122   of virtualised topologies, ...

H04L 41/14   Network analysis or design

H04L 41/34   Signalling channels for net...

H04L 41/40   using virtualisation of net...

H04L 43/04   Processing captured monitor...

H04L 43/062   related to network traffic

H04L 43/065   related to network devices

H04L 43/0811   by checking connectivity

H04L 43/0817   by checking functioning

H04L 43/0864   Round trip delays

H04L 43/0876   Network utilisation, e.g. v...

H04L 43/10   Active monitoring, e.g. hea...

H04L 45/02   Topology update or discovery

H04L 45/125 : based on throughput or band...

H04L 45/22 : Alternate routing

H04L 45/28 : using route fault recovery

H04L 45/302 : Route determination based o...

H04L 45/306 : Route determination based o...

H04L 45/38 : Flow based routing

H04L 47/125 : by balancing the load, e.g....

H04L 47/22 : Traffic shaping

H04L 47/24 : Traffic characterised by sp...

H04L 47/32 : by discarding or delaying d...

H04L 47/781 : Centralised allocation of r...

H04L 47/825 : Involving tunnels, e.g. MPLS

H04L 61/2503 : Translation of Internet pro...

H04L 61/4511 : using domain name system [DNS]

H04L 61/4523 : using lightweight directory...

H04L 63/061 : for key exchange, e.g. in p...

H04L 67/141 : Setup of application sessio...

H04L 67/52 : specially adapted for the l...

H04L 67/63 : Routing a service request d...

H04L 69/40 : for recovering from a failu...

H04W 84/04 : Large scale networks; Deep ...

View All

Methods and systems for controller-based secure session key exchange over unsecured network paths

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

110 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and systems for controller-based secure session key exchange over unsecured network paths

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

110 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links